lpac-jni: Always add GSMA ROOT CI1
All checks were successful
/ build-debug (push) Successful in 3m48s
All checks were successful
/ build-debug (push) Successful in 3m48s
This commit is contained in:
parent
6d200d14ac
commit
a1b2643625
|
@ -24,8 +24,9 @@ internal fun keyIdToKeystore(keyIds: Array<String>): KeyStore {
|
|||
}
|
||||
}
|
||||
|
||||
// If no known certs have been added, add at least the default GSMA CI
|
||||
if (ret.size() == 0) {
|
||||
// At the very least, we should always have GSMA ROOT CI1 trusted
|
||||
// many servers supporting custom roots are served with GSMA ROOT CI1 for TLS
|
||||
if (!ret.isCertificateEntry(DEFAULT_PKID_GSMA_RSP2_ROOT_CI1)) {
|
||||
getCertificate(DEFAULT_PKID_GSMA_RSP2_ROOT_CI1)?.let { cert ->
|
||||
ret.setCertificateEntry(DEFAULT_PKID_GSMA_RSP2_ROOT_CI1, cert)
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue